Name: NSA & CISA Alert AA20-205A, How To Meet Recommended Actions For OT Systems
Start: 2020-08-13T15:00:00Z
End: 2020-08-13T15:00:42.000Z
Location: BrightTALK
Rating: 5

Armis is the first agentless, enterprise-class security platform to address the new threat landscape of unmanaged and IoT devices. Fortune 1000 companies trust Armis’ unique out-of-band sensing technology to discover and analyze all managed and unmanaged devices, analyze endpoint behavior to identify risks and attacks, and protect information and systems.

Visit our page for expert information and useful tips on how to keep IoT attacks off of your network

Even the largest organizations still have difficulty finding every asset in their environments. And while a complete asset inventory provides the foundation for an effective security strategy, identifying and remediating the risks these devices pose is the best way to understand and reduce your attack surface.

Armis® and Viakoo® help resolve these problems and more. Armis sees almost five times more assets than traditional IT and security products, and it identifies security gaps and device vulnerabilities, detects anomalous behavior, and automates policy enforcement. Viakoo uses this information to remediate risks on devices automatically by managing firmware, certificates, and passwords, and ensuring they are working as expected. 

Join us to learn more about our joint solution’s benefits for facilities, IT, and security teams, including:
+Making sure every asset is 100% visible, operational, and secured
+Improving compliance by making it easier to prove/pass corporate or regulatory audits
+Reducing time and resources needed to identify and secure unmanaged and IoT devices
+Deploying devices securely in a way that doesn’t compromise their business value

Find & Fix Unmanaged & IoT Device Security Gaps & Gotchas

Armis & Splunk for Industrial & Manufacturing Environments

The security needs of Industrial Control Systems (ICS) and Operational Technology (OT) environments are changing. These devices are critical to production, manufacturing, power, and utilities, but they have no inherent security, and, increasingly, they are getting connected to enterprise networks. That creates a perfect storm for cyberattacks: OT devices that traditional security products can’t see or protect and vulnerable IT devices that bad actors can use to compromise manufacturing processes.

Armis® is an agentless, passive device security platform that secures all types of managed and unmanaged devices, including those in OT environments. Our Splunk® integration extends OT visibility and security to Splunk for a consolidated view of all devices and risks to help you keep your entire environment protected. Join Armis and Splunk to learn more about how our integration helps you: 

- Extend your investment value in Splunk to unmanaged operational technology (OT)  assets.
- Analyze device behavior for risks, threats, and attacks. 
- Improve the efficiency of threat detection and incident investigation.

ARMIS+SPLUNK  Close the OT Device Visibility & Security Gap

Over the course of the last year plus, there have been several high-profile vulnerabilities disclosed including URGENT/11, CDPwn and Ripple20 impacting hundreds of millions of connected devices - IT, OT, medical and IoT. These threats are real. The NSA included CDPwn as one of the Top 25 vulnerabilities being targeted by China. And the NSA & CISA jointly issued an alert about threats to OT in July. These vulnerable devices exist within mission critical operational technology systems and enterprise infrastructures. The devices themselves are being used as entry points by bad actors to gain access to the network and move laterally to mission critical environments where they can  take over the devices and demand ransom. Join Ben Seri VP of Research and Chris Dobrec, VP, Product Marketing at Armis, as they share new information and levels of exposure, demonstrate how these devices can be exploited, and how you can mitigate risk for your organization.

URGENT11 and CDPwn - One Year Later: Unpatched, Unprepared, Unprotected

Do you fully understand the Section 889 regulations? It is far-reaching, extremely broad, and means you must be able to fully certify you don't have any equipment or services from those restricted Chinese technologies. It applies to all kinds of federal contracts, from healthcare to information technology, from aerospace to automotive, from semiconductor to defense industry, and more.

How can you prove you are in compliance? Join this webinar featuring Nick Sinai, Former U.S. Deputy CTO, White House, Julie Starnes
Director of Federal Sales, Recorded Future and Chris Dobrec, VP of Product Marketing for Armis as they explore these questions and show you how you can meet those requirements.

What You Need to Know About the Section 889 Ban

Ransomware attacks are on track to double this year - impacting operations and patient safety. But the nature of these attacks has changed, taking out select parts of a hospital to show they can. The key to stopping such attacks starts with finding devices that are vulnerable to these exploits and taking necessary action to remediate. Join this webcast where Salwa Rafee, Vice President, Global Development at H-ISAC and Armis experts Curtis Simpson, CISO and Chris Dobrec, VP of Product Marketing, will discuss how to find and stop ransomware exploits in healthcare environments just like yours.

Ransomware in Healthcare: The Game Has Changed!

With remote work here to stay for many organizations for the foreseeable future, IT & Security teams need ways to maintain the same level of asset discovery, risk assessment and security policy enforcement that they have when employees are working in the office. On October 14, in honor of National Cybersecurity Awareness Month and Week 2’s theme of “Securing Devices at Home and Work,” Armis’ own Joe Lea, VP Product Management and Chris Dobrec, VP Product Marketing will answer the 5 key questions that all IT & Security teams must address when faced with this new work from home reality.

Work From Home: 5 Questions CISOs Must Ask

Having an asset inventory you can trust is a critical component for any IT or security team’s success. But with so many devices in your environment today, many of which traditional asset management and security products can’t even see, it’s hard to know what’s there--and what’s not. 

Our new integration with ServiceNow makes sure your CMDB always has the latest details about every device in your environment for a complete and up-to-date asset inventory whenever you need it. Armis also performs continuous, real-time risk analysis of device behavior, and can generate alerts, open trouble tickets, or trigger policy-based blocking or quarantine actions automatically.  

Join us to learn more about how our integration with ServiceNow enables joint customers to:

- Deploy comprehensive asset management at scale, easily, and quickly with ServiceNow.
- Leverage Armis to gain visibility to IoT/OT, managed and unmanaged devices, and use ServiceNow to improve their security and operations posture
- Monitor device activity to true-up their Service Graph and CMDB with new device details

Armis & ServiceNow Close the Managed, Unmanaged, and IoT Device Visibility Gap

Modern devices like beacons, sensors, interactive kiosks, inventory robots, and point of sale devices are transforming the way retailers do business. But they also create an expanded attack surface which attackers can exploit. So, how do you find all these devices across your entire footprint - from your supply chains to stores to corporate offices - so you can secure them? Join Home Depot CISO Stephen Ward and Armis CISO Curtis Simpson for a discussion of these challenges and how to ensure your entire footprint is secure.

From Supply Chain to Store: How to Protect Your Retail Operations." webinar for

As healthcare institutions have been grappling with the overwhelming impact of COVID-19, many have also been fighting a second battle against hackers. Malicious hackers know that healthcare organizations continue to be hyper-focused on addressing the pandemic, making them prime targets for ransomware. At the same time, they continue to deploy connected medical devices to help doctors, nurses, and clinicians deliver faster, higher quality care. But these devices also create an attack surface that most healthcare delivery organizations have difficulty seeing and securing. And when it comes to connected medical devices, poor cybersecurity poses risks to patient safety and puts millions at risk. When looking at your cybersecurity efforts, you need to consider the following:

- How do you secure medical devices that can’t take an agent or be scanned? 
- How do you detect and stop ransomware attacks? 
- How do you find the vulnerabilities that affect billions of devices across the globe? 
- How do you protect PHI data that may be sent across the network unencrypted?
- How do you ensure patient safety and hospital operations?

Join Armis experts Curtis Simpson, CISO and Tom Mayblum Senior Product Manager, as they answer these pressing questions that all healthcare organizations need to answer to protect themselves and their patients.

Why Cybersecurity is Difficult to Achieve for Healthcare Organizations

In an unprecedented move the NSA and CISA, two US government entities with the greatest visibility into system attack surfaces and exploitation in the wild, issued an urgent joint cybersecurity advisory to all critical infrastructure and services operations that rely upon OT systems to deliver core services with Alert AA20-205A.  This included recommendations that corresponding operations act with urgency to rapidly assess and manage the holistic set of security exposures placing such environments at risk.

Join Curtis Simpson, CISO at Armis (former CISO for Sysco Foods) for this in depth review of Alert AA20-205A, including:
-The rise in threats to OT systems
-The six recommended mitigation techniques proposed in AA20-205A
-The need for a complete view of every device - OT, IT, and IoT
-How to understand and evaluate Cyber-risk on “As-operated” OT Assets
-How to implement a continuous and vigilant system monitoring program

All IT and OT professionals responsible for OT security for critical infrastructures and industrial operations are encouraged to attend.

NSA & CISA Alert AA20-205A, How To Meet Recommended Actions For OT Systems

Medical device security has never been more important given a global pandemic and rising cyber attacks. The age of connected healthcare delivery is here, driving better patient care, reduced costs, and a wider attack landscape. So new approaches for security are needed. Join featured speaker Chris Sherman (Senior Analyst Forrester), Chris Dobrec (VP Product Marketing, Armis), & Tom Mayblum (Sr. Product Manager, Armis) will discuss what every healthcare institution needs to address for their cybersecurity program including: 

- The challenges with identifying and classifying every device - medical or otherwise in the environment. 
- Addressing new threats (like URGENT/11 and CDPwn) 
- The tools best suited for the task

The New Playbook for Medical & Hospital Device Security

Fraud. Attacks. Data Theft. These are the top of mind concerns for any Finance security professional. To address those issues, they need to understand where all their risks are coming from. Many don’t have a full accounting of their managed devices, let alone the explosion of unmanaged devices (which will reach 90% of all devices by 2021). And concerns over fraud need to be balanced with protecting critical infrastructure - which is constantly under attack.This ongoing battle requires the right focus and the right tools. If you do not understand what is in your environment:

- Would you have an accurate picture of your attack surface?
- Would you be able to find those assets that you’re not even aware of (such as IoT devices you didn’t even know were in the building)?
- How would you begin to secure those devices?
- How would you do patch management to something you don’t even know you have?
- How can you meet the basic CIS 1-6 security controls??

Join Armis CISO, Curtis Simpson and Christopher Dobrec, VP of Product Marketing, as they take a look at the risks associated with all the things in your environment, even those you may not know about. And how Armis is helping their customers in Finance with an agentless and passive solution.

The Agentless Approach to Securing Finance

Unmanaged endpoints and IoT devices form a large attack surface in nearly every modern enterprise. In fact by 2021, 90% of devices in businesses will be unmanaged. These devices can’t be secured or monitored like normal desktops, laptops, and servers. So how do you apply  cyber security frameworks — such as NIST 800-53, NIST CSF and ISO 27002 — in a world where legacy security solutions won’t work? Now there is a way to provide these  security controls around unmanaged and IoT devices.

In this webinar, we’ll take a look at the risks associated with unmanaged and IoT devices. We will provide examples of how large enterprises have deployed innovative agentless security controls. And show the agentless approach maps to the NIST frameworks to meet the requirements of cyber security frameworks for unmanaged endpoints and IoT devices.

Yes! You can apply NIST & ISO controls to unmanaged and IoT devices

Session begins with Nicole Newmeyer, Technical Director- IoT, National Security Agency. Discussing "IoT Security 'Just As' or 'Even More' Important in a Changing World. Followed by Curtis Simpson, CISO at Armis and Brad Hollingsworth, Director of Cybersecurity at Mattress Firm discussion, which begins at 19:00 mark of the recording.

When is IoT a four letter word? When it’s IoMT, IIoT, or IoRT? Because these devices often have no security. From manufacturing, to healthcare, to logistics & transportation, to energy and retail - all industries are deploying unmanaged and IoT devices to drive productivity & business performance. In fact, by 2021, 90% of devices will be unmanaged and IoT across virtually every industry. But use of these devices come with challenges - as they have no security and can't take an agent. In this session Brad Hollingsworth, Director of Cybersecurity for Mattress Firm, and Curtis Simpson, CISO of Armis (formerly CISO of Sysco) will share their experiences of working with these devices from the warehouse to corporate offices to retail stores. They will share their approaches in developing strategies for identifying and securing these devices, and how to address the real risks that come along with using unmanaged and IoT devices in your business.

IoT Isn't a Four Letter Word: Unless It's Not Secured

The typical ICS environment is no longer the impregnable air-gapped network that it once was. It has been connected to the enterprise network, to the Internet, and to business partners who provide remote support. So while the traditional Purdue reference architecture is still “the” model, in most real-world environments it has lost its integrity. Attackers can find their way into your OT environment through new connected devices and converging networks..

To address this problem, enterprises need a comprehensive security approach that secures both IT and ICS environments. Such a platform needs to be able to: 
-Generate a comprehensive inventory of all connected devices (OT & IT)
-Identify risks associated with every device
-Monitor the behavior and communication patterns of every device
-Identify policy violations such as deviations from the Purdue reference architecture
-Detect attack techniques such as those listed in the MITRE ATT&CK model
-Take automated actions to thwart attackers

This presentation will discuss practical approaches to achieving these goals including what to look for from security vendors.

The New OT Security Playbook: Addressing OT, IT, & IoT Devices

When connected devices and sensors run from the pipeline to IP phone or the drill rig to the board room, we can no longer remain focused on the OT device alone in our security strategy. Attackers see one large enterprise, with many possible attack vectors and pivot points. Security teams today need the ability to monitor all vectors and all devices that might be used as part of an industrial attack kill chain.
Join Nathan Singleton, Manager of Cybersecurity at Helmerich & Payne, and Curtis Simpson, Chief Information Security Officer at Armis, as they discuss the security challenges faced by modern industrial enterprises, the areas of exposure, and the changes needed to protect the modern OT environment.

We're All Two Hops from the Internet: Rethinking the OT Security Approach

Hospitals and clinics are exploding with new connected medical devices. From infusion pumps to MRI machines, x-ray machines, heart monitors, and communication badges, these connected medical devices help doctors, nurses, and clinicians deliver faster, higher quality care. But they also create an attack surface that most healthcare delivery organizations can’t secure. How do you secure medical devices that can’t take an agent or be scanned? How do you detect and stop ransomware attacks? How do you ensure patient safety and hospital operations? Join Curtis Simpson, CISO of Armis, as he discusses these challenges and how healthcare organizations can protect themselves and their patients

Securing Connected Medical Devices: The New Hippocratic Oath

IoT Security

Cyber Attacks

Cyber Security

Manufacturing

SCADA

Cyber Threats

Industrial IoT

Critical Infrastructure

Security Awareness

Welcome to the mobile computing community on BrightTALK! With the consumerization of IT and the widespread adoption of mobile devices across the globe, mobile computing has become an important part of many people's lives in a culture of bring your own device (BYOD). With mobile devices doubling as work phones and more employees working from home, businesses need to provide secure access to data and work applications from anywhere at any time. Join this growing community and hear from industry thought leaders in webinars and videos as they share their insight on mobile computing research and trends.

Mobile Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Thousands of healthcare IT professionals compose the health IT community on BrightTALK. Learn alongside them with relevant webinars on healthcare IT compliance, big data in healthcare and IT solutions for healthcare organizations. Join the conversation by asking questions and engaging with other participants during live webinars and organized discussions.

Health IT

Healthcare

Get powerful insights to run your business. CEOs, CFOs, CMOs, COOs, CTOs and CIOs are among the leaders in this community who connect with peers and experts to grow their businesses.

CxO Strategy

In the business management community, commercial experts will be sharing webinars and videos on an array of subjects. From sales and marketing, to finance, productivity and growth, this content will help you stay up-to-date with the current economic environment and provide timely management insight to drive business growth.

NSA & CISA Alert AA20-205A, How To Meet Recommended Actions For OT Systems

Presented by

About this talk

More from this channel